Merge branch 'development' into 'master'

prepare release v 3.2.7

See merge request dadangnh/iam!301

CHANGELOG.md

@@ -1,6 +1,11 @@
 # IAM Changelog
 
-## Version 3.2.6 (current stable)
+## Version 3.2.7 (current stable)
+* Updated Symfony Recipes
+* update dependencies
+* bug fix in endpoint change password by sikka
+
+## Version 3.2.6
 * Updated Symfony Recipes
 * update dependencies
 * bug fix in endpoint unit and kantor show all

config/packages/api_platform.yaml

@@ -1,6 +1,6 @@
 api_platform:
     title: IAM API Docs
-    version: 3.2.6
+    version: 3.2.7
     description: |
         Bug report and feature request are welcome, please report [here](https://gitlab.com/dadangnh/iam/-/issues).
         Newest production version are always available at [https://iam.pajak.or.id/api](https://iam.pajak.or.id/api)

src/Controller/SecurityController.php

@@ -291,9 +291,21 @@ public function forceChangePassword(Request                     $request,
 
         // TODO: check password strength and implement password blacklist
         $newPasswordEncoded = $passwordHasher->hashPassword($user, $newPassword);
+        $dateTime = new \DateTime('now', new \DateTimeZone('Asia/Bangkok'));
+        $formattedDate = $dateTime->format('Y-m-d H:i:s');
+        // Update the user's password
         $user->setPassword($newPasswordEncoded);
         $this->entityManager->persist($user);
         $this->entityManager->flush();
+
+        // Direct SQL update to set the lastchange field in GMT+7
+        $this->entityManager->getConnection()->executeStatement(
+            'UPDATE "user" SET last_change = :lastchange WHERE username = :username',
+            [
+                'lastchange' => $formattedDate, // Use the formatted date for lastchange
+                'username' => $username,        // Use the username for the WHERE condition
+            ]
+        );
         return $this->json([
             'code' => 200,
             'message' => 'password successfully changed.'